Certified Information Systems Security Professional (CISSP) — Question 30

The Chief Information Officer (CIO) has decided that as part of business modernization efforts the organization will move towards a cloud architecture. All business-critical data will be migrated to either internal or external cloud services within the next two years. The CIO has a PRIMARY obligation to work with personnel in which role in order to ensure proper protection of data during and after the cloud migration?

Answer options

• A. Chief Security Officer (CSO)
• B. Information owner
• C. Chief Information Security Officer (CISO)
• D. General Counsel

Correct answer: B

Explanation

The correct answer is B, the Information owner, as they have the ultimate responsibility for data integrity and protection throughout the migration process. While the CSO, CISO, and General Counsel play important roles in data security and compliance, it is the Information owner who directly oversees the data being migrated.